Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




4 posts

Wannabe Geek


# 257220 20-Sep-2019 17:25
Send private message

I tried to set up a filezilla server the other day to share some large files with friends and ran into trouble due to issues requiring bridging etc.

 

I'm not very technical but I can usually follow instructions.

 

As mentioned in the title I have a Huawei HG659b Modem and a google mesh with 3 satellites set up around the place.

 

One is in the garage which is about 20m from the house and contains my mining computers which are wired into a switch that's connected to the mesh unit.

 

I am open to changing my hardware if that would help but I am not completely confident to attempt the bridging in case I can't get the net back up for some reason :)

 

Cheers 


View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2

xpd

SysOp
10264 posts

Uber Geek

Mod Emeritus
Trusted
Lifetime subscriber

  # 2321471 20-Sep-2019 18:03
Send private message

Are you trying to use the FTP server across LAN to other PC's, or over internet ?

 

If LAN, then in theory, setup username/password and dirs, and that should be it.

 

For internet, you just need to open port 21 on your Huawei - however, Ive had nothing but nightmares setting up ports on HG659's (A and B).





XPD / Gavin / DemiseNZ

 

Server : i5-3470s @ 3.50GHz  16GB RAM  Workstation : Ryzen 5 3600 / 16GB DDR4 / RX580 4GB    Console : Xbox One

 

Now on BigPipe 100/100 and 2Talk  Add me on Steam   My Lego

 

Current Projects : Arcade Machine          BBS (WIP)


203 posts

Master Geek

Trusted

  # 2321472 20-Sep-2019 18:04
Send private message

Is this FTP going to be externally accessed?





Hi! I'm TheoM, but you know that already. I run Linux mirrors in NZ together with 2degrees. Like a mirror added? PM me!

 


 

https://theom.co.nz | https://theom.nz | https://mirrorlist.mirrors.theom.nz | Providing Free Mirrors Since Ages Ago™


 
 
 
 


914 posts

Ultimate Geek

Lifetime subscriber

  # 2321495 20-Sep-2019 18:26
Send private message

Have you considered synching your drive storage folder to cloud storage and sharing a cloud storage folder with your recipient. No need for Filezilla. No mods to standard HG659 config would be required. You could use Onedrive, Google Drive or Mega.





Gordy




4 posts

Wannabe Geek


  # 2321496 20-Sep-2019 18:27
Send private message

Yes, across the internet.

 

I had it working locally no problem but it was the issue passing through 2 routers that was causing me grief

 

I wanted to get the FTP working. It should have been easy :P

 

I can share through a server I rent space on but the files are too big for the other suggested methods. 20GB plus

 

I also managed to share files using anydesk, which is a great program but I'm not sure about resume on failure.

 

I really just wanted to know for the sake of knowing.

 

I also have a PC with freenas running full time.

 

 

 

Forwarding the ports to the host PC's IP seems to be the problem. I don't really know...


203 posts

Master Geek

Trusted

  # 2321501 20-Sep-2019 18:40
Send private message

FTP consumes 2 ports for transfer, and up to 10k for the clients. you'll need to open 20, 21, and whatever ephemeral range FZ has. also note FTP is incredibly insecure





Hi! I'm TheoM, but you know that already. I run Linux mirrors in NZ together with 2degrees. Like a mirror added? PM me!

 


 

https://theom.co.nz | https://theom.nz | https://mirrorlist.mirrors.theom.nz | Providing Free Mirrors Since Ages Ago™




4 posts

Wannabe Geek


  # 2321504 20-Sep-2019 18:44
Send private message

TheoM:

 

FTP consumes 2 ports for transfer, and up to 10k for the clients. you'll need to open 20, 21, and whatever ephemeral range FZ has. also note FTP is incredibly insecure

 

 

 

 

When you say insecure, do you mean to the host?

 

Maybe I should forget about it :)

 

Cheers TheoM :)


2418 posts

Uber Geek

Lifetime subscriber

  # 2321517 20-Sep-2019 19:07
One person supports this post
Send private message

Use sftp, only need to forward port 22.

 
 
 
 


914 posts

Ultimate Geek

Lifetime subscriber

  # 2321521 20-Sep-2019 19:33
Send private message

Wow.... files 20GB plus.... lots of internet traffic too... :-)




Gordy


/dev/null
9032 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  # 2321583 20-Sep-2019 20:33
3 people support this post
Send private message

I would never set up FTP these days - it is incredibly insecure.

 

Instead, look at setting up Nextcloud on your Freenas server:

 





631 posts

Ultimate Geek


  # 2321602 20-Sep-2019 21:13
Send private message

Is your ISP using CG-NAT?


15601 posts

Uber Geek

Trusted
Subscriber

  # 2321606 20-Sep-2019 21:22
Send private message

User Resilio Sync, it's easy and generally works fine on most internet connections.


6081 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  # 2321607 20-Sep-2019 21:22
One person supports this post
Send private message

Why not just OneDrive or similar? Once you've uploaded them they're done. I have plenty of files and folders in my 1TB OneDrive that are tens of GBs.

xpd

SysOp
10264 posts

Uber Geek

Mod Emeritus
Trusted
Lifetime subscriber

  # 2321622 20-Sep-2019 21:42
Send private message

TheoM:

 

FTP consumes 2 ports for transfer, and up to 10k for the clients. you'll need to open 20, 21, and whatever ephemeral range FZ has. also note FTP is incredibly insecure

 

 

I only port 21, works fine. Nothing of value on the system its on so if someone breaks in, good on them.

 

 

 

 





XPD / Gavin / DemiseNZ

 

Server : i5-3470s @ 3.50GHz  16GB RAM  Workstation : Ryzen 5 3600 / 16GB DDR4 / RX580 4GB    Console : Xbox One

 

Now on BigPipe 100/100 and 2Talk  Add me on Steam   My Lego

 

Current Projects : Arcade Machine          BBS (WIP)


203 posts

Master Geek

Trusted

  # 2321632 20-Sep-2019 21:55
One person supports this post
Send private message

xpd:

 

TheoM:

 

FTP consumes 2 ports for transfer, and up to 10k for the clients. you'll need to open 20, 21, and whatever ephemeral range FZ has. also note FTP is incredibly insecure

 

 

I only port 21, works fine. Nothing of value on the system its on so if someone breaks in, good on them.

 

 

For Active FTP I suppose that's fine. Passive uses a lot more ports





Hi! I'm TheoM, but you know that already. I run Linux mirrors in NZ together with 2degrees. Like a mirror added? PM me!

 


 

https://theom.co.nz | https://theom.nz | https://mirrorlist.mirrors.theom.nz | Providing Free Mirrors Since Ages Ago™


497 posts

Ultimate Geek


  # 2321750 21-Sep-2019 00:06
Send private message

If the client that is doing the downloads is using passive FTP, then you need a really smart router to do it - the router will need to read the FTP connection traffic on port 21 and open the passive FTP data port based on what is in that traffic.  I think Ciscos can do it, but I have never seen that feature in less capable routers.  So first off, if you really want to do this, you need to set up the FTP server to only do active FTP, where it uses port 20 only for the FTP data traffic.  And you need to use an FTP client that can be told to do active FTP only - browsers normally do passive FTP and do not automatically try active FTP when passive fails to connect.  I have my ancient FTP server on my OS/2 virtual machine set up so it simply rejects connection attempts where passive FTP is requested.

 

Next, you MUST disable anonymous login to your FTP server.  If you allow anonymous logins, you will shortly find that your FTP server has been uploaded lots of porn or illegal files by someone who found it and is using it to distribute the files.  Your PC will overflow its disk in short order, and the police may well turn up to arrest you.  If you do not actually need the capability for uploading, make sure to disable that too.

 

Third, make sure that you set up good passwords for your clients to use - FTP servers do attract a fair number of bots trying to break into them, and your only protection is a good username/password combination.

 

Ideally, if you know where your clients are connecting from, you should get the FTP server or the router to only allow access from their specific IP addresses (if they have static IP addresses), or the range of IP addresses that come from their ISP only.  That way all the bots from Russia, China or running on Amazon services will be excluded completely.

 

Make sure you have logging set up - you do need to keep an eye on the traffic until you are sure that you are secure, and you may well need to add rules to exclude particularly persistent bots from even connecting - the bad bots make hundreds of connections per minute trying to guess your usernames and passwords.  If the FTP software can do it, use the option that prevents multiple connections from the same IP address at once, and rate limit connections from the same IP address to say one per minute.  A good router may be able to do rate limiting also.


 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Vodafone New Zealand starts two year partnership with LetsPlay.Live
Posted 28-Jan-2020 11:24


Ring launches indoor-only security camera
Posted 23-Jan-2020 17:26


New report findings will help schools implement the digital technologies curriculum content
Posted 23-Jan-2020 17:25


N4L to upgrade & support wireless internet inside schools
Posted 23-Jan-2020 17:22


Netflix releases 21 Studio Ghibli works
Posted 22-Jan-2020 11:42


Vodafone integrates eSIM into device and wearable roadmap
Posted 17-Jan-2020 09:45


Do you need this camera app? Group investigates privacy implications
Posted 16-Jan-2020 03:30


JBL launches headphones range designed for gaming
Posted 13-Jan-2020 09:59


Withings introduces ScanWatch wearable combining ECG and sleep apnea detection
Posted 9-Jan-2020 18:34


NZ Police releases public app
Posted 8-Jan-2020 11:43


Suunto 7 combine sports and smart features on new smartwatch generation
Posted 7-Jan-2020 16:06


Intel brings innovation with technology spanning the cloud, network, edge and PC
Posted 7-Jan-2020 15:54


AMD announces high performance desktop and ultrathin laptop processors
Posted 7-Jan-2020 15:42


AMD unveils four new desktop and mobile GPUs including AMD Radeon RX 5600
Posted 7-Jan-2020 15:32


Consolidation in video streaming market with Spark selling Lightbox to Sky
Posted 19-Dec-2019 09:09



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.